$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33322d3438203d3e20313331373035.roa (raw, json) Hash identifier: P8qqWd8lu4ePMxcCVDgoAu5B+0ALSgogKErRSPrn+aQ= Subject key identifier: DC:33:97:40:20:13:EC:C5:18:72:74:B6:6D:E5:45:0C:D8:AF:56:91 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 5AB97BFCBCF5B4353FD44038CC0E644B835410CC Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa Signing time: Thu 13 Jun 2024 16:00:00 +0000 ROA not before: Thu 13 Jun 2024 15:55:00 +0000 ROA not after: Thu 12 Jun 2025 16:00:00 +0000 asID: 131705 IP address blocks: 2406:5c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b9:7b:fc:bc:f5:b4:35:3f:d4:40:38:cc:0e:64:4b:83:54:10:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Jun 13 15:55:00 2024 GMT Not After : Jun 12 16:00:00 2025 GMT Subject: CN=DC3397402013ECC5187274B66DE5450CD8AF5691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:50:c5:c3:42:50:e3:b7:8b:12:f5:eb:03:c0: 8e:93:61:5a:37:2b:5d:72:6a:cc:0c:ab:c9:3d:d9: 9a:a9:ad:59:da:64:3c:ea:aa:7b:73:20:92:de:2f: 88:57:ad:c4:31:65:9b:b9:02:9b:83:3f:45:75:14: 92:b8:16:02:d0:81:c8:ae:0d:5a:cd:29:10:bf:d4: 55:7e:45:e5:58:d7:40:fb:d4:5a:b7:f1:b6:dc:af: b3:3e:4b:76:ff:bc:cf:ec:c9:e5:c7:69:bf:ae:91: dd:82:f6:d4:4c:e1:ee:f8:84:ab:eb:11:59:06:17: d4:02:94:dc:d6:cd:75:cb:8b:33:88:52:25:c4:7f: a6:4e:b9:7e:dc:5e:24:9d:4e:87:51:d2:fd:a6:c7: 3b:74:35:bb:1b:04:af:f6:98:f0:38:06:bf:4d:e5: 93:a3:a2:88:9a:99:4c:a9:b9:ce:8d:5a:13:11:af: 84:06:9e:06:a8:67:77:e7:ce:c4:ac:c2:d9:6e:6d: 14:d2:e4:4a:73:f1:4d:d6:50:75:4d:1e:fd:7c:37: cb:d6:c6:e7:71:81:37:90:e7:3b:39:25:a2:95:c3: c3:d5:ae:5a:94:ce:dd:ae:6e:c0:e3:6f:10:31:57: 01:3e:87:96:68:00:05:3c:1b:ba:69:58:42:c7:eb: 69:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:33:97:40:20:13:EC:C5:18:72:74:B6:6D:E5:45:0C:D8:AF:56:91 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/32 Signature Algorithm: sha256WithRSAEncryption 32:83:ca:d8:27:ef:16:b8:67:27:56:c9:67:a3:1d:56:9c:68: 2d:33:7c:d6:ec:91:d2:b4:55:a8:e1:fc:1e:12:e6:14:df:e8: 01:cf:d7:db:13:08:55:07:51:93:e1:ab:e7:0c:a1:4b:7b:b6: 3c:50:ca:51:81:f0:c0:41:fb:d7:ca:bb:f1:b6:c5:43:6b:67: e8:4a:c7:70:8a:a6:7e:99:93:37:a0:92:1a:47:83:ea:3c:e0: 85:fa:89:91:6e:b4:e3:87:48:34:5b:a0:1b:e4:cd:1a:c5:fb: 86:ad:e3:f3:18:36:32:52:2f:d1:82:0e:b1:d3:7a:c1:7c:55: 51:a1:1b:38:fc:35:e1:ad:3e:38:52:3a:fc:77:05:a8:d3:6f: 3b:dd:41:f6:ab:ee:73:0c:c8:16:d2:21:ea:83:7d:96:34:d4: 67:89:b5:98:b6:e8:c5:94:37:9b:4a:02:33:63:6b:08:70:c0: 7f:dc:d7:69:0b:03:98:1a:e8:d1:06:8a:d4:fb:46:99:7a:7b: 99:a8:24:17:52:c2:65:4b:c2:bf:3d:d5:79:ec:25:66:8d:ac: ff:36:4e:0d:fc:f8:0e:a4:2c:61:af:1b:79:c4:f4:00:ae:30: 76:73:07:54:8d:28:35:b8:43:e3:8e:17:ec:1e:c6:75:23:b0: a0:db:89:84 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUWrl7/Lz1tDU/1EA4zA5kS4NUEMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNDA2MTMxNTU1MDBaFw0yNTA2MTIxNjAwMDBaMDMxMTAvBgNV BAMTKERDMzM5NzQwMjAxM0VDQzUxODcyNzRCNjZERTU0NTBDRDhBRjU2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdUMXDQlDjt4sS9esDwI6TYVo3 K11yaswMq8k92ZqprVnaZDzqqntzIJLeL4hXrcQxZZu5ApuDP0V1FJK4FgLQgciu DVrNKRC/1FV+ReVY10D71Fq38bbcr7M+S3b/vM/syeXHab+ukd2C9tRM4e74hKvr EVkGF9QClNzWzXXLizOIUiXEf6ZOuX7cXiSdTodR0v2mxzt0NbsbBK/2mPA4Br9N 5ZOjooiamUypuc6NWhMRr4QGngaoZ3fnzsSswtlubRTS5Epz8U3WUHVNHv18N8vW xudxgTeQ5zs5JaKVw8PVrlqUzt2ubsDjbxAxVwE+h5ZoAAU8G7ppWELH62lHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU3DOXQCAT7MUYcnS2beVFDNivVpEwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGXEAwDQYJKoZI hvcNAQELBQADggEBADKDytgn7xa4ZydWyWejHVacaC0zfNbskdK0Vajh/B4S5hTf 6AHP19sTCFUHUZPhq+cMoUt7tjxQylGB8MBB+9fKu/G2xUNrZ+hKx3CKpn6Zkzeg khpHg+o84IX6iZFutOOHSDRboBvkzRrF+4at4/MYNjJSL9GCDrHTesF8VVGhGzj8 NeGtPjhSOvx3BajTbzvdQfar7nMMyBbSIeqDfZY01GeJtZi26MWUN5tKAjNjawhw wH/c12kLA5ga6NEGitT7Rpl6e5moJBdSwmVLwr891XnsJWaNrP82Tg38+A6kLGGv G3nE9ACuMHZzB1SNKDW4Q+OOF+wexnUjsKDbiYQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:55 2024 by rpki-client on console-ams.rpki-client.org